If you are in current news, then you might already know that LastPass one of the major password manager “felt” that it was somehow breached and some of user data was stolen in hashed form which will not be of any use to that hacker. But for me this is the indication that no matter how secure your system is there is no better way to store password then keep it in your mind … Anyways, I got this email from LastPass yesterday “suggesting” that I should change my master password. Luckily, I don’t have any important passwords stored there because I don’t trust these services at first place …
Dear LastPass User,
On May 3rd, we discovered suspicious network activity on the LastPass internal network. After investigating, we determined that it was possible that a limited amount of data was accessed. All LastPass accounts were quickly locked down, preventing access from unknown locations. We then announced our findings and course of action on our blog and spoke with the media.
As you know, LastPass does not have access to your master password or your confidential data. To further secure your account, LastPass now requires you to verify your identity when logging in. You will be prompted to validate your email if you try to log in from a new location. This prompt will continue to appear until you change your master password or indicate that you are comfortable with the strength of your master password.
Please visit https://lastpass.com/status for more information.
The LastPass Team
Anyways, I guess incidents like this always make me think that even though some net enthusiasts have declared that web is the future and everything is moving towards web, internet itself is still vulnerable and we still need to have more secure systems.
It’s Just A Thought …